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© Pay TV systems are known which have a protec- 
tion against the inhibition of writing in smart cards 

(11) . In such a system data packets are transmitted 
via a decoder (t5) to a smart card, containing in- 
formation which will update the ontitlomonts (13) 
inside the smar1 card itself. 

For improving security, inside such packets a time- 
related information is added. The smart card checks 

(12) , If there is an evolution of this parameter be- 
tween two successive packets. If not. the card will 
inhibit the delivering of dcscrambling parameters 
(14) to the decoder (15). 
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The present Invention relates to a method for 
access control. , 

Background 

In FR-A-8914417 a system of ji>rotection 
against the inhibition of writing In smart cards is 
described This system may be not secure enough 
against hackers. 

Invention 



It is one object of the invention to disclose a 
method of access control with improved security. 
This object is reached by the method disclosed in is 
claim 1 . 

The invention can e.g. be used in PAY- TV 
systems, such as VIDEOCRYPT and EUROCRYPT. 
Typically in a PAY-TV system there are two kinds 
of data packets which are transmitted via a de- 26 
coder to a user, e.g. a smart card: 

- packets containing Information Which will per- 
mit the decoder to descramble the video sig- 
nal and possibly the sound signai/s. These 
data are returned to the decoder in a clear 25 
way only, if the card is entitled to access the 
current programme. In the EUROCRYPT ter- 
minology they are called ECM; \\ 

- packets containing information Which will up- 
date the entitlements inside the smart card 30 
(memory) itself. In the current EUROCRYPT 
terminology, they are called EMM. 

There is no interest for hackers to suppress the 
first type of packets (ECM). In that case, the de- 
coder would never be able to descramble the pic- 35 
ture and/or sound. 

But according to the type of entitlement stor- 
age (EMM) performed inside the smart card it can 
be profitable to suppress the emission of the sec- 
ond type of packets to the smart card. 40 

There are two main types of entitlement stor- 
age used: 

- either the entitlement is stored with its begin- 
ning and ending dates; 

- or simply the current state, authorized or not, 45 
is memorised. 

The first method is very secure because when 
an EMM packet is discarded, the user is not re- 
entitled. But this method uses a lot of space inside 
the card's memory and is very expensive in time 50 
consumption. The second method uses a minimal 
amount of memory space in the smart card but is 
less secure than the previous one. If EMM Is dis- 
carded, the user remains entitled. 

Three attacks against the second method of 55 
storage could be used. These attacks are based on 
the assumption that the hacker has found a way to 
distinguish the two different types of data packet. 



The invention presents appropriate countermeas-. 
.. ures. 

First Attack: 

Once the card is authorized to descramble all 
the programmes, all packets of EMM type are 
discarded. By that way, the status of the entitle- 
ment can never be changed in the future and the 
hacker has gained an unlimited access to the pro- 
grammes during all the card validity period. 

The inventive countermeasure: 
The smart card has to receive, during, a given 
period of time at least one EMM packet, even if 
this packet is not dedicated to the smart card. In 
case this condition is not respected, the smart card 
will not deliver anymore the right parameters 
(ECM) for descrambllng. This inhibition can be 
either temporary or definitive. 

The determination of the minimal period can be 
made by counting the number of packets of the 
first time received by the smart card. 

Second Attack: 

The second attack is more sophisticated than 
the first one. In the first attack, the hacker simply 
discards every EMM packets. Due to cryptograph- 
ical protection, it is assumed that the hacker has no 
way to distinguish a priori, if the packet is dedi- 
cated or not to his smart card. But by some eaves- 
dropping he can determine a posteriori, if the pack- 
et was dedicated for his card. Once the hacker 
would have found an 'inactive* packet, he could 
discard every EMM packets arid replace them by 
the 'inactive' packet. In that case once more the 
hacker would have gained unlimited access to the 
programmes. 

The inventive countermeasure: 
Inside the EMM packet a time related information 
is added. The packet must contain an information 
which will evolve with time and for which the smart 
card can easily check the evolution. If there is no 
evolution of this parameter between two successive 
EMM packets, the smart card will inhibit the de- 
livering of descrambling parameters to the decod- 
er. The following two methods can be used: 

- Inside the packet there is a real time informa- 
tion, for instance the number of hundredths of 
seconds elapsed since midnight. The smart 
card will check that between two successive 
EMM packets this time Information has in- 
creased. If the test is not successful, the 
smart card inhibits transfer of descrambling 
parameters to the decoder. 

- Inside the packet, one byte is a copy of one 
defined byte of the control parameters used 
for descrambling. These parameters are de- 
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livered by the ECM packets and are by na- 
ture random. This method is easy to imple- 
ment and the requested information is un- 
predictable for ihe hacker. 



Third Attack: 



Drawing 

A preferred embodiment of the invention Is 
described with reference to the accompanying 
drawing, which shows in: 

Fig. 1 pay TV decoder with smart card. 



In a first step the hacker registers himself as 
an official subscriber. In a second step, he does 
not pay the new subscription fee and his card is 
black listed (i.e. the smart card will not deliver the 
right descrambling parameters to the decoder). In a 
third step, he requests his card to bo white listed 
and records all the transactions performed between 
the decoder and the smart card until the smart 
card is authorized again. Next time his smart card 
will be black listed, he is able to play back the 
complete sequence (EMfvl and ECM) in order to 
validate his card. 

The inventive countermeasure: 
The concept is similar to the one used against 
Attack 2. Inside the EMM packets a time stamp 
information is added. This information will change 
slowly, for instance incremented by one each day. 
Once the smart card finds an EMM message dedi- 
cated to itself, the card will compare the time 
stamp infomrtation stored in the card. If the time 
stamp is greater or equal to the one stored, the 
action is performed and the memorised time stamp 
is replaced by the new one. Else the action is 
rejected and the smart card is inhibited. 

In principle in the inventive method for access 
control scrambled video and/or audio signals to- 
gether with cryptographically protected data are 
transmitted via decoder means to a receiver device 
- e.g. a smart card - the data containing related 
parameters for descrambling and entitlement up- 
dates for that specific receiver device or other 
receiver devices, whereby: 

- said receiver device checks at least once in a 
predetermined time period, if any entitlement 
update is received, else said receiver device 
delivers no descrambling information to said 
decoder means 

and/or 

- said entitlement updates contain a data field 
which evolves with time and said receiver 
device delivers no descrambling information 
to said decoder means, if it detects no re- 
spective evolution between two successive of 
said data fields. 

Advantageous additional embodiments of the 
inventive method are resulting from the respective 
dependent claims. 



Preferred embodi m e n ts 

*o In Fig. 1 scrambled video and/or audio signals 

together with cryptographically protected data are 
transmitted 16 via a pay TV decoder 15 to a smart 
card 11 which contains a memory and microcon- 
troller chip 12. The data 13 containing parameters 

^5 for descrambling and entitlement updates are sent 
from the decoder to the card- The card checks on 
its chip the validity of the received data 13 and 
delivers respective descrambling information 14 to 
decoder 15. This check is made as described 

20 above. 

Claims 

1. Method for access control, in which scrambled 
25 video and/or audio signals together with cryp- 
tographically protected data are transmitted 
(16) via decoder means (15) to a receiver 
device (11) - e.g. a smart card - the data (13) 
containing related parameters for descrambling 

30 and entitlement updates for that specific re- 

ceiver device or other receiver devices, 
characterised in that: 

- said receiver device (11) checks at least 
once in a predetermined time period, if 
35 any entitlement update is received, else 

said receiver device delivers no de- 
scrambling information (14) to said de- 
coder means (15> 
and/or 

^0 - said entitlement updates contain a data 

field which evolves with time and said 
receiver device (11) delivers no descram- 
bling information (14) to said decoder 
means (15), if it detects no respective 

•*6 evolution between two successive of said 

data fields. 

2. Method according to claim 1, characterised 
in that said data field is a transcription of the 

50 current local time. 

3. Method according to claim 1, characterised 
In that said data field is a copy of one or more 

byte'S of said scrambling parameters. 

55 

4. Method according to claim 1, characterised 
in that said entitlement updates data are con- 
taining a time information and that said re- 
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ceiver device delivers no descrambling infor- 
mation to said decoder means, if the last eval- 
uated time information is not greater than the 
time information evaluated before. 
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Fig.1 
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